iPhone and EAP-TLS with ACS & 5508

Answered Question
May 13th, 2010

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:minor-fareast; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;} I have a large customer that is moving into a new building and adding some
new wireless.

They are using a 5508 with 1142's and an ACS server.



They will have the following SSID's

SSID01 -> WPA-EAP-TLS

SSID02 -> WPA2-EAP-TLS (future use)

SSID03 -> Guest Access (internet access only)



They currently use this design across the enterprise which has worked well.

The problem is to get certificates pushed down to the client for the EAP-TLS
they always connect the machine once by wire and log on to the domain so a
GPO pushes the cert to the machine.



This creates a problem that I don't know how to solve as they want to use
iPhones on the new deployment.



Does anyone have any ideas on how to get a cert down to the iPhones for use
with the SSID's?

Thanks in advance for any assistance.

I have this problem too.
0 votes
Correct Answer by mubeeshalivm about 6 years 6 months ago

I don't think we can push certs from windows server to iphones . Probably set up a webpage say a accessible from a different ssid  from which clients can download and install cert. ?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
mubeeshalivm Fri, 05/21/2010 - 04:02

I don't think we can push certs from windows server to iphones . Probably set up a webpage say a accessible from a different ssid  from which clients can download and install cert. ?

Actions

This Discussion

 

 

Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode